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This listing of claims replaces all prior versions and listings of claims in the application: 



Listing of Claims: 



1 . (Previoxisly presented) A method for checking a digital signature, involving a 
microcircuit connectable to a data processing system, the microcircuit being designed to receive 
requests to check digital signatures from the data processing system, and to process these 
requests, a digital signature being generated using a private key only known to a signatory entity 
and associated with a public key, said method comprising a step of storing a certificates table 
containing a digest form of at least one public key in a memory in the microcircuit, and a phase 
of checking a digital signature comprising steps of: receiving by the microcircuit a digital 
signature to be checked and a public key in a pair of keys comprising a private key that was used 
to generate the digital signature to be checked, calculating a digest form of the received public 
key, and searching for the calculated digest form of the public key in the certificates table, and 
decrypting the digital signature using the received public key if the calculated digest form of the 
public key is located in the certificates table. 

2. (Previously presented) The method according to claim 1, further comprising a phase 
of inserting a public key into the certificates table, comprising steps of: receiving by the 
microcircuit a certificate of the public key to be inserted in the certificates table, and a public key 
firom a certification entity that generated the certificate, the certificate comprising the public key 
to be added into the certificates table and a digital signature of the certification entity, generated 
using a private key belonging to a pair of kej^s including the public key of the certification entity, 
calculating by the microcircuit a digest form of the public key received fi-om the certification 
entity, and searching for the calculated digest form of the public key in the certificates table, 
decrypting the digital signature using the public key received fi-om the certification entity if the 



AppUcant : Pailesetal. Attorney's Dooket No.: 18394-0009US1 

Serial No. : 10/516,966 / RVLmR60677US 05502 

FUed : July 29, 2005 

Page : 3 of 12 



calculated digest form of the public key is located in the table, extracting the public key to be 
inserted from the certificate if the decrypted digital signature is correct, calculating a digest of 
the public key extracted from the certificate, and inserting the calculated digest in the certificates 
table. 

3. (Previously presented) The method according to claim 2, wherein the phase of 
inserting a public key in the certificates table comprises a step of inserting in the certificates table 
of a pointer to the digest of the public key of the certification entity that issued the certificate of 
the public key to be inserted, so as to define a certification tree in combination with the inserted 
digest of the public key. 

4. (Previously presented) The method according to claim 3, fiirfher comprising a phase of 
deleting a digest of a public key from the cotificates table, comprising steps of deleting from the 
certificates table the digest of a public key to be removed, and deleting from the certificates table 
all digests of pubUc keys associated with a pointer indicating the public key to be removed. 

5. (Previously presented) The method according to claim 2, whereiQ each public key 
digest entered into the certificates table is associated with a validity end date, the phase of 
inserting a public key into the certificates table fixrther comprising steps of reading in a received 
certificate a validity end date of the public key to be inserted, and entering the validity end date 
of the public key to be inserted into the certificates table, together with the digest of the public 
key to be inserted, if it is earlier than the validity end date of the public key of the certification 
entity read in the certificates table. 

6. (Previously presented) The method according to claim 2, wherein each digest of a 
public key entered in the certificates table is associated with a usage counter that is incremented 
every time that a digital signature is checked using the public key, and said method comprising 
deletion of a public key digest fit)m the certificates table when the usage counter is zero and the 



AppUcant : PaUesetal. Attorney's Docket No.: 18394-0009US1 
Serial No. : 10/516,966 / RVUBR60677US 05502 

FUed : July 29, 2005 
Page : 4 of 12 



number of empty locations in the certificates table is less than a predetermined threshold. 

7. (Previously presented) The method according to claim 2, wherein each public key 
digest entered into the certificates table is associated with a usage counter that is incremented 
every time that a digital signature is checked usuig the pubhc key, and with a last usage date that 
is updated every time that the associated usage counter is incremented, said method fijrther 
comprising a step to select a digest of a public key to be deleted as a fijnction of the 
corresponding associated values of the usage counter and the last usage date when the number of 
empty locations in the certificates table is less than a predetermined threshold. 

8. (Previously presented) The method according to claim 1, wherein the microcircuit 
uses a predefined hashing fimction to calculate the digest forms of the public keys. 

9. (Previously presented) The method according to claim 1 , fvirther comprising a phase 
of inserting a root public key in the certificates table, this insertion phase being done by a write 
processing controlled by a MAC calculated using a specific key in the microcircuit and only 
known to an entity having issued the microcircuit 

10. (Previously presented) The me&od according to claim 1, wherein the digest of a 
public key memorized in the certificates table is obtained by calculating a digest of the public 
key associated with other information such as the validity end date of the public key, identity 
information and serial numbers, this information being transmitted to the microcircuit every time 
that the signature is checked using the public key. 

1 1 . (Previously presented) The method according to claim 1 , wherein the digest of a 
public key memorized in the certificates table is obtained by calculating a digest of the certificate 
received by the microcircuit when the public key is inserted in the certificates table, this 
certificate being transmitted to the miCTOchcuit every time that the signature is checked using the 
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12. (Previously presented) The method according to claim 1, wherein the certificates 
table is stored in a secure memory area in the microcircuit. 

13. (Previously presented) A microcircuit, designed to receive requests to check digital 
signatures from a data processing system, and to process these requests, a digital signature being 
generated using a private key only known to a signatory entity and associated with a public key, 
said microcircuit comprising; memory means for storing a certificates table containing a digest 
form of at least one public key, means for receiving a digital signature to be checked and a public 
key in a pair of keys comprising a private key that was used to generate the digital signature to 
be checked, means for calculating a digest form of the received public key, and for searching for 
the calculated digest form of the public key in the certificates table, and means for decrypting the 
digital signature using the received public key if the calculated digest form of the public key is 
located in the certificates table. 

14. (canceled) 

15. (Previously presented) The microcircuit according to claim 13, further comprising: 
means for receiving a certificate of the public key to be inserted in the certificates table, and a 
public key from a certification entity that generated the certificate, the certificate comprising the 
public key to be added into the certificates table and a digital signature of the certification entity, 
generated using a private key belonging to a pair of keys including the public key of the 
certification entity, means for calculating a digest form of the public key received from the 
certification entity, and for searching for the calculated digest form of the public key in the 
certificates table, means for decrypting the digital signature using the public key received from 
the certification entity if the calculated digest form of the public key is located in the table, 
means for extracting the pubHc key to be inserted from the certificate if the decrypted digital 
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signature is correct, means for calculating a digest of the public key extracted from fee 
certificate, and for inserting the calculated digest in the certificates table. 

16. (Previously presented) The microcircuit according to claim 15, fiirther comprising 
means for inserting in the certificates table a pointer to the digest of the public key of the 
certification entity that issued the certificate of the public key to be inserted, so as to define a 
certification tree in combination with the inserted digest of the public key. 

17. (Previously presented) The microcircuit according to claim 16, further comprising 
means for deleting from the certificates table a digest of a public key to be removed, and means 
for deleting from the certificates table all digests of public keys associated with a pointer 
indicating the public key to be removed. 

18. (Previously presented) The microcircuit according to claim 15, further comprising: 
means for reading in a received certificate a validity end date of a public key to be inserted, and 
means for entering the validity end date of the public key to be inserted into flie certificates table, 
together with the digest of the public key to be inserted, if the validity end date is earlier than the 
validity end date of the public key of the certification entity read in the certificates table. 

19. (Previously presented) The microcircuit according to claim 15, fijrther comprising 
means for incrementing a usage counter associated with each public key digest entered into the 
certificates table, every time that a digital signature is checked using the pubhc key, and means 
for deleting a public key digest fcom the certificates table when the associated usage counter is 
zero and the number of empty locations in the certificates table is less than a predetermined 
threshold. 



20. (Previously presented) The microcircuit according to claim 1 9, further comprising 
means for updating a last usage date associated with each public key digest entered into the 
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certificates table, every time that a digital signature is checked using the pubUc key, means for 
deleting a public key digest from the certificates table when the number of empty locations in the 
certificates table is less than a predetermined threshold, and means for selecting a digest of a 
public key to be deleted as a function of the corresponding associated values of the usage counter 
and the last usage date. 

2 1 . (Previously presented) The microcircuit according to claim 1 3 , fijrther comprising 
means for executing a predefined hashing fimction to calculate the digest forms of the public 
keys. 

22. (Previously presented) The method according to claim 13, further comprising means 
for inserting a root pubUc key in the certificates table, using a write processing controlled by a 
MAC calculated using a specific key in the microcircuit and only known to an entity having 
issued the microcircuit. 

23. (Previously presented) The mefliod according to claim 13, wherein the means for 
calculating the digest of a public key memorized in the certificates table comprise means for 
calculating a digest of the public key associated with other information comprising the validity 
end date of the public key, identity infijrmation and serial numbers, this information being 
transmitted to the microcircuit every time that the signature is checked using the public key. 

24. (Previously presented) The method according to claim 13, wherein the means for 
calculating the digest of a public key memorized in the certificates table comprise means for 
calculating a digest of the certificate received by the microcircuit when the public key is inserted 
in the certificates table, this certificate being transmitted to the microcircuit every time that the 
signature is checked using the public key. 
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25. (Previously presented) The method according to claim 13, wherein the memory 
means for storing the certificates table is a secure memory area. 



